Bind@9.4.3 Security Vulnerabilities and Issues — Bind@9.4.3 CVE List

Lucene search

IscBind9.4.3

3 matches found

CVE•added 2009/07/29 5:30 p.m.•270 views

CVE-2009-0696

The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section...

4.3CVSS6.8AI score0.35784EPSS

CVE•added 2009/11/25 4:30 p.m.•250 views

CVE-2009-4022

Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive c...

2.6CVSS7.7AI score0.20044EPSS

CVE•added 2009/01/07 5:30 p.m.•235 views

CVE-2009-0025

BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

6.8CVSS7.1AI score0.03902EPSS